|
264831
|
7.5 |
HIGH
Network
|
fatek
|
automation_fv_designer
automation_pm_designer_v3
|
A malicious attacker can trigger a remote buffer overflow in the Communication Server in Fatek Automation PM Designer V3 Version 2.1.2.2, and Automation FV Designer Version 1.2.8.0.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5800
|
2024-11-21 11:55 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264832
|
8.1 |
HIGH
Network
|
libexif_project
debian
canonical
|
libexif
debian_linux
ubuntu_linux
|
A vulnerability was found in libexif. An integer overflow when parsing the MNOTE entry data of the input file. This can cause Denial-of-Service (DoS) and Information Disclosure (disclosing some criti…
|
-
|
CVE-2016-6328
|
2024-11-21 11:55 |
2018-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264833
|
5.4 |
MEDIUM
Network
|
redhat
|
jboss_bpm_suite
|
JBoss BPM Suite 6 is vulnerable to a reflected XSS via dashbuilder. Remote attackers can entice authenticated users that have privileges to access dashbuilder (usually admins) to click on links to /d…
|
-
|
CVE-2016-6343
|
2024-11-21 11:55 |
2018-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264834
|
7.5 |
HIGH
Network
|
epic
|
mychart
|
XPath injection vulnerability in Epic MyChart allows remote attackers to access contents of an XML document containing static display strings, such as field labels, via the topic parameter to help.as…
|
CWE-91
Blind XPath Injection
|
CVE-2016-6272
|
2024-11-21 11:55 |
2018-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264835
|
7.8 |
HIGH
Local
|
foxitsoftware
|
foxit_reader
phantompdf
|
Heap-based buffer overflow in Foxit Reader and PhantomPDF 7.3.4.311 and earlier on Windows allows remote attackers to cause a denial of service (memory corruption and application crash) or potentiall…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-6169
|
2024-11-21 11:55 |
2018-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264836
|
7.8 |
HIGH
Local
|
foxitsoftware
|
foxit_reader
phantompdf
|
Use-after-free vulnerability in Foxit Reader and PhantomPDF 7.3.4.311 and earlier on Windows allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a …
|
CWE-416
Use After Free
|
CVE-2016-6168
|
2024-11-21 11:55 |
2018-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264837
|
6.1 |
MEDIUM
Network
|
sophos
|
puremessage
|
Cross-site scripting (XSS) vulnerability in Sophos PureMessage for UNIX before 6.3.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-6217
|
2024-11-21 11:55 |
2018-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264838
|
4.3 |
MEDIUM
Network
|
ibm
|
rational_quality_manager
rational_team_concert
rational_doors_next_generation
rational_engineering_lifecycle_manager
rational_rhapsody_design_manager
rational_software_architect_design…
|
IBM Jazz technology based products might divulge information that might be useful in helping attackers through error messages. IBM X-Force ID: 116868.
|
CWE-200
Information Exposure
|
CVE-2016-6024
|
2024-11-21 11:55 |
2017-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264839
|
9.8 |
CRITICAL
Network
|
jantek
|
jtc-200_firmware
|
An Improper Authentication issue was discovered in JanTek JTC-200, all versions. The improper authentication could provide an undocumented BusyBox Linux shell accessible over the TELNET service witho…
|
CWE-287
Improper Authentication
|
CVE-2016-5791
|
2024-11-21 11:55 |
2017-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264840
|
8.0 |
HIGH
Network
|
jantek
|
jtc-200_firmware
|
A Cross-site Request Forgery issue was discovered in JanTek JTC-200, all versions. An attacker could perform actions with the same permissions as a victim user, provided the victim has an active sess…
|
CWE-352
Origin Validation Error
|
CVE-2016-5789
|
2024-11-21 11:55 |
2017-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
